If this is your first visit, be sure to
check out the FAQ by clicking the
link above. You may have to register
before you can post: click the register link above to proceed. To start viewing messages,
select the forum that you want to visit from the selection below.

Now if you are running Windows Vista or 7 browse to C:\Users\<UserName>\AppData\Roaming\Mozilla\Firefox\Profiles\<RandomString>.default\formhistory.sqlite

In xp it is C:\Documents and Settings\<UserName>\Application Data\Mozilla\Firefox\Profiles\<RandomString>.default

Hit browse & search then the search button. Now under the field 'fieldname' type in credit or cc and pick 'contains' from the drop down menu. Hit ok.

Now if you have ever bought anything on the internet with your credit card chances are all the information is saved here, full name, visa number, expiry, and CSV number.
Another way to check is to type in the first 4 digits of your credit card into the field 'Value' and pick 'contains from the drop down menu. Once again you will find your credit card number popping up all over the place.
Now I don't think it would be very difficult at all to write a small trojan that steals these databases and uploads them, certainly a lot easier to do than setting up a keylogger that has to run for weeks. Quite an easy way to steal some ones identity.

I recommend you delete all the entries you find, or even delete the entire file if you don't want any forms being remembered.

I imagine there are hundreds of sites that have been coded poorly and will cache these details.

I guess that browsers that don't support autocomplete (like Opera) don't have this issue. Other than that, the issue seems to be a combination of a few things: firstly, autocomplete is turned on by default for input boxes (so in order to turn it off, you'd have to specifically include the autocomplete="off" attribute - but from what I can find, that's not valid XHTML).

Secondly, I thought that IE turns off autocomplete when it detects an https connection, so if you're having the issue described in the article, there's a problem that's bigger than just an autocomplete issue.

I recommend you delete all the entries you find, or even delete the entire file if you don't want any forms being remembered.

I haven't tried this, but I'm going to guess that IE and Firefox will just recreate the files if you delete them. If you don't want any forms being remembered, you could just, you know, turn off autocomplete?

I don't think that the person who wrote the article has much of a clue about browser software or the internet.

Negative is quite right. If you allow your browser to autocomplete forms and save private data for quick entry then it will do precisely that. Browsers are only as secure as you set them up to be, which will depend on your diligence and knowledge of the browser.

In FF just go into the "Privacy" settings and tell it not to save stuff and clear private data on closing. Look at the details of this and you can chose what you want it to delete, which includes passwords, cookies, form contents and the rest.

My wife does online shopping. I have just checked her machine and there is absolutely NO stored CC data.

Tools such as CCleaner also wipe this information, as well as the manual and automatic features in the browser itself.

"I imagine there are hundreds of sites that have been coded poorly and will cache these details."

Errrrrrrrrrrr.........................I don't think that secure online transaction systems work like that